Overview

overview

8

Static

static

8

b12e8e407b...db.exe

windows7-x64

8

b12e8e407b...db.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    b12e8e407b75da2d7511ff9fc8b4331491242561d6a7bb6f4279483c777918db

  • Size

    33KB

  • Sample

    221205-hmbmwaef43

  • MD5

    8dc3c09152f151d2018ca2eb2dc805a6

  • SHA1

    4021b68aba14f166ed8956057e9bc2e2e7b6c866

  • SHA256

    b12e8e407b75da2d7511ff9fc8b4331491242561d6a7bb6f4279483c777918db

  • SHA512

    2ef5edafb53fb1309b1b80a800eb750511ad67d819bf0f5a4ad26302358a94bed79a85db2835892287614fde9919ab1c3b325c4315f0654427b2867c20164e2c

  • SSDEEP

    768:FyE4zNFcwp0ZgMiXzx3nVgkUplM+6ojqG:FxGLtMeQjDjqG

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      b12e8e407b75da2d7511ff9fc8b4331491242561d6a7bb6f4279483c777918db

    • Size

      33KB

    • MD5

      8dc3c09152f151d2018ca2eb2dc805a6

    • SHA1

      4021b68aba14f166ed8956057e9bc2e2e7b6c866

    • SHA256

      b12e8e407b75da2d7511ff9fc8b4331491242561d6a7bb6f4279483c777918db

    • SHA512

      2ef5edafb53fb1309b1b80a800eb750511ad67d819bf0f5a4ad26302358a94bed79a85db2835892287614fde9919ab1c3b325c4315f0654427b2867c20164e2c

    • SSDEEP

      768:FyE4zNFcwp0ZgMiXzx3nVgkUplM+6ojqG:FxGLtMeQjDjqG

    Score
    8/10
    persistenceupx

    • Adds policy Run key to start application

      persistence

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks